When Encryption Fails

Explore the complexities and potential pitfalls of encryption in this 14-minute conference talk from Security BSides London. Delve into the Dunning-Kruger effect and its impact on security perceptions, examine the stages of encryption, and understand the challenges in software development. Learn from real-world customer examples and flow diagrams illustrating potential vulnerabilities. Investigate downgrade attacks, debunk the myth of "military-grade encryption," and gain insights into side-channel attacks. Discover the importance of staying realistic in security assessments and apply systems thinking techniques to enhance your approach. Analyze the concept of security as a potential disabler and develop a comprehensive framework for addressing encryption failures across various domains.

Introduction
What have you learned
Dunningkruger effect
The problem
Stages of Encryption
Software Development
Customer Example
Flow Diagram
Downgrade Attacks
Military Grade Encryption
Sidechannel Attacks
Staying Realistic
Cross Domains
Framework
Systems Thinking Techniques
Security as a Disabler